ae64bfc327
Major changes in 1.14.6 (2017-09-25)
This is a bug fix release.
Fix a KDC denial of service vulnerability caused by unset status strings [CVE-2017-11368]
Preserve GSS contexts on init/accept failure [CVE-2017-11462]
Fix kadm5 setkey operation with LDAP KDB module
Use a ten-second timeout after successful connection for HTTPS KDC requests, as we do for TCP requests
Fix client null dereference when KDC offers encrypted challenge without FAST
|
||
|---|---|---|
| .. | ||
| patch-aa | ||
| patch-ae | ||
| patch-aj | ||
| patch-al | ||
| patch-cf | ||
| patch-cg | ||
| patch-cj | ||
| patch-config_lib.in | ||
| patch-config_libnover.in | ||
| patch-config_pre.in | ||
| patch-config_shlib.conf | ||
| patch-configure.in | ||
| patch-include_osconf.hin | ||
| patch-kadmin_cli_ss_wrapper.c | ||
| patch-lib_apputils_Makefile.in | ||
| patch-lib_apputils_net-server.c | ||
| patch-lib_krb5_asn.1_asn1buf.h | ||
| patch-lib_krb5_ccache_Makefile.in | ||
| patch-Makefile.in | ||
| patch-plugins_kdb_db2_libdb2_Makefile.in | ||
| patch-plugins_kdb_db2_Makefile.in | ||
| patch-plugins_preauth_otp_Makefile.in | ||
| patch-plugins_preauth_pkinit_Makefile.in | ||
| patch-util_k5ev_verto-k5ev.c | ||
| patch-util_ss_Makefile.in | ||